Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Spk_-E9gKQOjF-KIvRm52iCTVYo.cer
File: Spk_-E9gKQOjF-KIvRm52iCTVYo.cer (raw, json)
Hash identifier: TFQvyIVBi38qR2jkh0EM92naJUQTaiBYqoEWM+BWNLI=
Subject key identifier: 4A:99:3F:F8:4F:60:29:03:A3:17:E2:88:BD:19:B9:DA:20:93:55:8A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01FF3E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9163998/3A417D7408DC11EDBEDE612BC4F9AE02/Spk_-E9gKQOjF-KIvRm52iCTVYo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9163998/3A417D7408DC11EDBEDE612BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 10 Jul 2024 15:53:48 +0000
Certificate not after: Sun 31 Aug 2025 00:00:00 +0000
Subordinate resources: AS: 137831
AS: 138341
IP: 103.115.76.0/22
IP: 202.181.88.0/21
IP: 2402:e340::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 20:43:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 130878 (0x1ff3e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 10 15:53:48 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=A9163998/serialNumber=4A993FF84F602903A317E288BD19B9DA2093558A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:ad:7b:0e:b5:1e:c8:10:ab:d5:ce:59:b2:2f:
aa:35:83:4a:b0:7e:32:c9:da:b0:5d:c4:2a:80:98:
89:f6:98:bc:e7:b3:46:73:4f:e6:48:e2:01:41:13:
52:1e:b3:9c:06:85:a3:75:e7:5b:e7:53:f7:b1:a7:
b5:92:62:8f:12:63:ef:55:c6:e2:70:d2:49:b0:06:
e6:7e:2b:a6:74:1e:45:69:f8:a9:ce:1a:c6:9e:67:
50:a9:e8:9d:b8:8c:89:d6:43:75:1b:12:bf:5a:e6:
df:d7:d9:b2:f4:94:65:87:b3:73:f4:71:0a:37:a1:
f6:11:72:2f:a8:bb:90:0a:a8:e1:b6:ce:0b:5a:a2:
56:73:f6:d8:89:9d:9f:0d:07:20:5d:6a:50:9b:0a:
12:c2:b6:91:82:56:80:1b:1e:3c:9f:09:fe:b1:40:
5a:04:13:3a:49:91:65:96:64:e0:a3:b5:29:46:c6:
df:0e:32:65:07:2b:26:6f:c9:e8:77:52:e9:9c:fc:
ec:36:33:30:ea:47:e8:85:dc:ab:02:c7:2f:3f:e6:
0e:04:80:aa:31:56:14:27:16:4e:4d:6b:d1:a0:db:
81:03:32:7f:09:d4:69:8c:2b:fa:3e:50:6d:1a:87:
96:95:55:74:a3:0d:81:8d:d1:f5:11:46:a3:4b:eb:
9b:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:99:3F:F8:4F:60:29:03:A3:17:E2:88:BD:19:B9:DA:20:93:55:8A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9163998/3A417D7408DC11EDBEDE612BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9163998/3A417D7408DC11EDBEDE612BC4F9AE02/Spk_-E9gKQOjF-KIvRm52iCTVYo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
137831
138341
sbgp-ipAddrBlock: critical
IPv4:
103.115.76.0/22
202.181.88.0/21
IPv6:
2402:e340::/32
Signature Algorithm: sha256WithRSAEncryption
07:b9:a5:c2:2a:10:93:98:80:da:36:05:07:1c:a8:2f:81:5b:
98:66:49:28:25:75:95:02:b6:5d:34:5a:9d:90:24:8c:92:d0:
e2:cf:8b:35:e7:4e:77:f6:e6:01:6a:7d:83:ce:3e:6f:b1:49:
e4:90:d9:cf:20:0b:0d:d2:f8:2b:91:ea:f9:32:29:1b:ce:a4:
17:5c:7e:9c:85:60:6c:f7:5e:c3:b2:53:90:77:55:a0:1c:4b:
9a:86:ad:ca:72:0d:14:5d:71:d3:aa:56:27:16:2b:ad:fa:a1:
bc:67:89:3e:bc:c1:b1:4d:06:70:5a:31:04:e4:1a:5a:83:42:
9e:66:be:b3:df:f8:98:e3:fa:3e:3f:e3:b4:e8:c1:fc:b3:41:
14:10:ea:cc:5a:33:90:ee:95:03:5b:5a:86:16:1e:87:f6:2a:
78:6d:ec:bf:10:10:59:8c:f7:8a:b5:36:79:b9:1f:3c:c7:11:
6c:53:5b:eb:b0:43:ea:92:52:b4:e6:35:99:65:5b:46:9f:03:
18:45:08:91:85:34:c2:f7:27:9e:97:0f:8d:8a:d9:d3:5c:fe:
ce:46:87:b5:9c:2e:83:42:ee:c6:a9:58:d1:21:be:57:2c:2f:
ff:e3:27:05:e1:3e:d6:88:36:35:22:53:9d:07:48:ab:67:e0:
17:16:dd:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 22:15:25 2024 by rpki-client on console-ams.rpki-client.org